HUAWEI support

We use cookies to improve our site and your experience. By continuing to browse our site you accept our cookie policy. Find out more

Security Bulletins for HUAWEI Phones/Tablets, December 2025

HUAWEI is releasing monthly security updates for flagship models. This security update includes HUAWEI and third-party library patches:

This security update includes the following HUAWEI patches:

CVE Vulnerability Description Impact Severity Affected Version
CVE-2025-66320 Multi-thread race condition vulnerability in the camera framework module Successful exploitation of this vulnerability may affect availability. High HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66321
CVE-2025-66322 Multi-thread race condition vulnerability in the camera framework module Successful exploitation of this vulnerability may affect availability. High HarmonyOS6.0.0, HarmonyOS5.0.1
CVE-2025-66324 Input verification vulnerability in the compression and decompression module Successful exploitation of this vulnerability may affect app data integrity. High HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66327 Race condition vulnerability in the network module Successful exploitation of this vulnerability may affect service confidentiality. High HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66323 Vulnerability of improper criterion security check in the card module Successful exploitation of this vulnerability may affect availability. Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-58279 Permission control vulnerability in the media library module Successful exploitation of this vulnerability may affect service confidentiality. Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66325 Permission control vulnerability in the package management module Successful exploitation of this vulnerability may affect service confidentiality. Medium HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0
CVE-2025-66326 Race condition vulnerability in the audio module Successful exploitation of this vulnerability may affect availability. Medium HarmonyOS6.0.0
CVE-2025-66328 Multi-thread race condition vulnerability in the network management module Successful exploitation of this vulnerability may affect availability. Medium HarmonyOS5.0.1
CVE-2025-66329 Permission control vulnerability in the window management module Successful exploitation of this vulnerability may affect availability. Medium HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0
CVE-2025-66330 App lock verification bypass vulnerability in the file management app Successful exploitation of this vulnerability may affect service confidentiality. Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66331 Denial of service (DoS) vulnerability in the office service Successful exploitation of this vulnerability may affect availability. Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-66332
CVE-2025-66333
CVE-2025-66334

This security update includes the following third-party library patches:

CVE Severity Affected Version
CVE-2024-23718 High HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0
CVE-2025-48546 High HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0
CVE-2025-48548 High HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0
CVE-2025-48549 High HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0
CVE-2025-32317 High HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.2.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0
CVE-2025-39760 Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1
CVE-2025-38680 Medium HarmonyOS6.0.0, HarmonyOS5.1.0, HarmonyOS5.0.1

Updated on: 2025-12-05

Leaving consumer.huawei.com
After clicking the link, you will enter a third-party website. Huawei is not responsible and has no control over this third party website.
Return Continue